Attack-Resilient Supervisory Control with Intermittently Secure Communication

Conference Paper

In this work, we study supervisory control of discrete event systems in the presence of network-based attacks on information delivered to and from the supervisors. The attacks are modeled by finite state transducers (FSTs), having the ability to nondeterministically rewrite a word to any word of a regular language. A desired language is called controllable if there exists a security-aware supervisor that ensures that the restricted language executed by the plant for any possible attack behavior is the desired one - we refer to such supervisors as attack-resilient. First, we solve the problem of computing the maximal controllable sub-language (MCSL) of a desired language and propose the design algorithm for an attack-resilient supervisor, in scenarios where no security guarantees exists for communication between the plant and the supervisor. Then, we consider the case where the supervisor has active but intermittent access to a size-limited secure channel, which ensures integrity and availability of the data transmitted over it. Specifically, we propose the notion of accessibility as a measure of distance between a language and its sub-language, and show that a desired language is controllable with intermittently secure communication if and only if its difference from its MCSL without secure channel is bounded by the accessibility measure. Finally, we illustrate our approach on several examples.

Full Text

Duke Authors

Cited Authors

  • Wang, Y; Pajic, M

Published Date

  • December 1, 2019

Published In

Volume / Issue

  • 2019-December /

Start / End Page

  • 2015 - 2020

Electronic International Standard Serial Number (EISSN)

  • 2576-2370

International Standard Serial Number (ISSN)

  • 0743-1546

International Standard Book Number 13 (ISBN-13)

  • 9781728113982

Digital Object Identifier (DOI)

  • 10.1109/CDC40024.2019.9029366

Citation Source

  • Scopus